Hackin9

InfoSec News

At least one of the cable operators that struck a wireless spectrum deal with Verizon on Friday now plans to stop reselling WiMax mobile service from Clearwire.
 
HP System Management Homepage (CVE-2011-1541) Remote Unauthorized Access Vulnerability
 
HP System Management Homepage (CVE-2011-1540) Remote Code Execution Vulnerability
 
Independent platform-as-a-service providers acknowledge that theirs is a crowded market, especially with big IT vendors like Oracle, Hewlett-Packard and Dell entering as competitors, but they expressed confidence this week that there is room in the market for many players.
 
The outcry over Carrier IQ's mobile-phone tracking software continued Friday, with a U.S. congressman asking the Federal Trade Commission to investigate the company.
 
Analysis of the command-and-control server network connected to the Duqu Trojan found hackers worked fast to wipe any data that could be traced to a source.

Add to digg Add to StumbleUpon Add to del.icio.us Add to Google
 
PHP Wares PHP Inventory Cross-Site Scripting and SQL Injection Vulnerabilities
 
Facebook is expanding its operations in the Big Apple, announcing on Friday plans to open an engineering office in New York in 2012.
 
Heap Memory Corruption in HP Device Access Manager for Protect Tools Information Store
 
Intel on Friday said it has readied Android 4.0 for smartphones and tablets based on its upcoming Atom processor code-named Medfield, raising the possibility of Intel-inside handheld devices being released next year with the new OS.
 
Consumer Watchdog has called for a U.S. government investigation of Carrier IQ, the maker of tracking software for mobile phones, and its users.
 
The new Asus Eee Pad Transformer Prime is a bright, fully-equipped quad-core Android tablet that blows the competition out of the water -- but all that power comes at a cost.
 
The U.S. government's report today that the unemployment rate is down and hiring is up showed some good news for tech workers as well.
 
A group of U.S. lawmakers has proposed an alternative to the controversial copyright enforcement legislation, the Stop Online Piracy Act, with the draft proposal giving the U.S. International Trade Commission (ITC) the authority to investigate complaints about copyright infringement on foreign websites.
 
X.Org X11 File Enumeration Information Disclosure Vulnerability
 
RhinoSoft Serv-U FTP Server SITE CHMOD Buffer Overflow Vulnerability
 
IT budgets and responsibilities are moving out of the control of IT departments and into the hands of others, thanks to trends such as consumerization and cloud computing, Gartner says in its vision for 2012 and the coming years.
 
Mobile software vendor Carrier IQ has been hit with two lawsuits over the use of its controversial tracking technology in tens of millions of mobile phones worldwide.
 
Joomla! 'com_jobprofile' Component 'id' Parameter SQL Injection Vulnerability
 
Ipswitch TFTP Server Directory Traversal Vulnerability
 
JBoss AS Administration Cross Site Request Forgery Vulnerability
 
HS TFTP Server Software Multiple Remote Denial Of Service Vulnerabilities
 
[PT-2011-43] Database information disclosure in Kayako Fusion
 
SANS AppSec 2012 CFP reminder
 
FreeBSD ftpd/ProFTPD on FreeBSD Remote Root Exploit
 
[security bulletin] HPSBHF02723 SSRT100536 rev.1 - HP Protect Tools Device Access Manager for Windows, Remote Execution of Arbitrary Code, Denial of Service
 
As SaaS (software as a service) gains in maturity and popularity, enterprise IT buyers will have to grapple with a new set of questions and considerations when purchasing it, according to a new Forrester Research report.
 
The U.S. House of Representatives Intelligence Committee has approved a recently introduced bill that would allow greater cyberthreat information sharing between U.S. intelligence agencies and private companies even though privacy advocates say it would allow those agencies to spy on U.S. residents.
 
Amazon's Kindle Fire is expected to take nearly 14% of the global tablet market in the fourth quarter, placing it second behind Apple's iPad with its 65% share, according to an analysis by IHS.
 
In the hopes of reducing the complexity of making data calls over the Web, eBay has launched a programming language, called ql.io, which bundles separate API requests into a single call.
 
Tech stocks looked strong Friday morning on the back of a week of upbeat surveys on small business and online spending, positive news about enterprise hardware and hopeful reports on U.S. employment and the European debt crisis.
 
Carrier IQ has insisted that its software is designed only to help wireless carriers diagnose operational problems on networks and mobile devices. But its own marketing material raises doubts about that claim.
 
Researchers at International Data Corp. say some big battles will be brewing in 2012 in the cloud, mobile and Big Data arenas, so much so that "companies like Microsoft, HP, SAP, RIM, and others -- including Apple -- will face 'crossroads moments' in 2012. By the end of the year, we should have a good idea which vendors will -- and won't -- be among the industry's leaders at the end of the decade," said Frank Gens, senior vice president and chief analyst at IDC in a statement.
 
Napster, the pioneering and controversial peer-to-peer music sharing service that exploded onto the Internet scene in the summer of 1999, is officially gone.
 
Analysis of the command-and-control server network connected to the Duqu Trojan found hackers worked fast to wipe any data that could be traced to a source.

Add to digg Add to StumbleUpon Add to del.icio.us Add to Google
 

Intel denies US$100 ultrabook subsidy
ZDNet Australia
WA officer charged over unlawful access to police database http://t.co/sVVY3UqI” #identitymanagement #infosec #privacy The result is expected.Chrome has the money and ability to become the NO.1 in the browser market. However, not all the users are like ...

and more »
 
Enterprise social collaboration software, which offer Facebook and Twitter-like capabilities adapted for workplaces, will grow strongly in the coming years, eclipsing demand for more traditional communications and collaboration products, according to a new study from Forrester Research.
 
iPhone users can turn off the Carrier IQ software that's raised a ruckus among consumers, bloggers and privacy advocates with just five taps.
 
The cloud is emerging as a platform for entertainment beyond just streaming music. The problem right now is that many of the content providers have the model backwards and insist on linking cloud-based viewing with old school cable service subscriptions. For today’s installment of 30 Days With the Cloud, I am taking a closer look at watching movies and TV shows from the cloud.
 
SpectrumCo, a joint venture among Comcast, Time Warner Cable and Bright House Networks, has agreed to sell mobile spectrum licenses covering 259 million U.S. residents to Verizon Wireless for US$3.6 billion, the companies announced Friday.
 
Deutsche Bank is set to complete the first phase of a major cloud computing overhaul aimed at improving internal application development.
 
With the Research In Motion PlayBook tablet selling for about half its original price, RIM said Friday it is taking a $485 million charge on its third-quarter books.
 
An unpatched Yahoo Messenger vulnerability that allows attackers to change people's status messages and possibly perform other unauthorized actions can be exploited to spam malicious links to a large number of users.
 
Concern over the laxity of United States data protection laws has created a new market for Europe-based cloud computing services.
 
The recent disclosure that top mobile phone providers are using software from Carrier IQ that critics say can gather and track all sorts of personal data from a user's smartphone has sparked a firestorm of controversy. Do you think carriers and smartphone makers used Carrier IQ to track users?
 
Even in this today's struggling economy, there are rapidly expanding companies that have big tech hiring targets.
 

WA officer charged over computer access
ZDNet Australia
WA officer charged over unlawful access to police database http://t.co/sVVY3UqI” #identitymanagement #infosec #privacy The result is expected.Chrome has the money and ability to become the NO.1 in the browser market. However, not all the users are like ...

and more »
 
Since the 2010 Haiti earthquake -- when millions of dollars were raised through texts -- mobile giving has moved beyond disaster aid to all types of charitable fundraising efforts. Even churches are getting in on the act.
 
Forget phones numbers and email addresses. The era of the Internet handle is emerging.
 
An Australian court has extended the sales ban on Samsung Electronics' Galaxy Tab 10.1 until Dec. 9, giving Apple more time to come up with reasons why the tablet should not be allowed to go on sale.
 
If you rarely stray from Wi-Fi network areas and you're sick of high cell phone bills, you may find this new $19-a-month wireless service a very attractive proposition.
 
JBoss Application Server Administrative Console Cross-Site Scripting Vulnerability
 

Cliff diving for iPhones
ZDNet Australia
WA officer charged over unlawful access to police database http://t.co/sVVY3UqI” #identitymanagement #infosec #privacy The result is expected.Chrome has the money and ability to become the NO.1 in the browser market. However, not all the users are like ...

 

Posted by InfoSec News on Dec 02

Dear Colleague,

As a reader of InfoSec News, I am pleased to send you the programme for
the Cyber Defence & Network Security conference, taking place 24th-27th
January 2012 at the Radisson Blu Portman Hotel, London, UK.

Download the programme here:

http://www.cdans.org/redForms.aspx?id=598084&pdf_form=1&utm_campaign=mainma
il&utm_medium=email&utm_source=intelligenceonline.com&utm_content=text&utm_...
 

Posted by InfoSec News on Dec 02

http://www.thenewamerican.com/tech-mainmenu-30/computers/10009-un-hacked-by-anti-new-world-order-group

By Alex Newman
New American
01 December 2011

A group of anti-world government hacker activists or “hacktivists” under
the banner of “TeamPoison” hacked the United Nations Development Program
(UNDP), releasing hundreds of passwords belonging to the organization’s
bureaucrats. The release also included a message blasting the global...
 

Posted by InfoSec News on Dec 02

http://www.informationweek.com/news/government/security/232200508

By Elizabeth Montalbano
InformationWeek
November 30, 2011

The military command in charge of U.S. cyber-warfare activities has
successfully completed its first major exercise in its mission to
protect the Department of Defense (DOD) from cyber attacks.

The U.S. Cyber Command performed the exercise, called Cyber Flag, over a
week's time at the Air Force Red Flag Facility...
 

Posted by InfoSec News on Dec 02

========================================================================

The Secunia Weekly Advisory Summary
2011-11-24 - 2011-12-01

This week: 37 advisories

========================================================================
Table of Contents:

1.....................................................Word From Secunia...
 

Posted by InfoSec News on Dec 02

http://www.v3.co.uk/v3-uk/news/2129136/security-spending-rises-wake-profile-attacks

By Shaun Nichols & Dan Worth
V3.co.uk
01 Dec 2011

Cyber security spending will reach $60bn in 2011 as businesses across
the globe look to protect themselves from ever-increasing online
threats, according to a study from consultancy PwC.

The company said in its Security Mergers and Acquisitions report that
increased demand for enterprise security products...
 
Internet Storm Center Infocon Status